- Blog
- Profile
- Homepage
-
Two threads on Twitter regarding online surveillance: it happens because our governments demand it
Thread 1 Nokia appears to have been instrumental to the operation of Russia’s surveillance infrastructure. Everyone in that article asking why Nokia was allowed to sell these services. And of course the company’s answer is “Western countries demand the same capabilities.” This is an underappreciated component of the surveillance debate. When folks in the US/Europe…
-
The more I think about it, the more I realise quite what a *genius* ploy #messenger #interoperability is for those who want to surveil the world or resist it gaining “mass end-to-end encryption” #IOP
Interoperability as currently called-for … extends the social graph beyond individual platforms so that they crosslink with each other, leak disjoint identities, etc; see: XKeyScore sows confusion regarding any particular platform’s security (“…am I using E2E in this group chat, or not?”) any new, secure platform that gets big will be hobbled eventually, to the…
-
MatrixDotOrg actively calling for everyone’s security to be weakened so that perhaps more people will adopt them
Unroll 2/ No exaggeration about “extremism” here, for instance this is today’s blogpost from @matrixdotorg regarding the proposal, and frankly I am horrified in multiple dimensions that they could propose any of this, for the following reasons: 3/ In reverse order: THE WHOLE POINT of an end-to-end encrypted environment is that “your data” is locked…
-
Explaining fundamental problems of the EU #DMA demanding instant #messenger #interoperability, via fun analogies with food & sex — #endtoendencryption #e2ee
Thomas Urbain (AFP) Thanks for getting back to me. Here are some questions: What are the main issues with implementing interoperability for messaging apps ? Would it require standard protocols to be implemented by all participating players ? How far are we from it becoming a reality ? Could end to end encryption work from…
-
Notes for interview with @DanMilmo in saturday’s @Guardian regarding @Twitter, @TorProject and bypassing censorship
Dan asked me some questions in respect of an upcoming article, and this is what I wrote in response, as well as one additional postscript which I added for Dan, and another postscript from another conversation I had elsewhere, which I am sharing here for relevance. Very little of my input survived the editing process.…
-
Why offer an Onion Address rather than just encourage browsing-over-Tor?
There are a bunch of reasons to launch an onion site, and a bunch of benefits, all of which have provided value to platforms such as Facebook, the BBC or NYT Onions. The first benefits are authenticity and availability: if you are running Tor Browser and if you click/type in exactly the proper Onion address,…
-
Notes on mining the #facebookcorewwwi onion address
Seeing as it has been conveniently leaked by Frances Haugen, I thought it would be nice to write briefly on the mining of the (now defunct) Version-2 Tor Onion address which was known as “facebookcorewwwi” — the v2 onion-address for Facebook. As already reported — because we shared that much — the onion address was a…
-
Long-deferred reading finally arrived from Amazon
-
On Nuclear War and Eating cold Pop-Tarts
I was going to simply quote-tweet "Can confirm" to this hilarious and accurate joke; but then I made the mistake of reading the replies from butthurt younguns shouting "…but when did Gen-X fear World War 3?" People: It literally defined our generation. I got a degree in astronomy is that amongst all the US-Soviet tub-thumping…
-
Increasingly frantic attempts by the #AgeVerification & #OnlineSafetyBill community to dissuade people of the obvious logic that…
Increasingly frantic attempts by the #AgeVerification & #OnlineSafetyBill community to dissuade people of the obvious logic that: in order to exclude a community from a website, just as much as to include one, in both cases you MUST process their data: I believe that the rationale is this: that the #ChildProtection and #OnlineSafety advocates DO…
-
“UK government opens consultation on medic-style register for Brit #infosec pros”
#HEADSUP — I blogged the screencapped post in 2013, and turns out that I was right: "UK government opens consultation on medic-style register for Brit #infosec pros" …it's a great and obvious way for Gov't both to whip-in dissent from the UK infosec community: Props to @GazTheJourno for the article: https://www.theregister.com/2022/01/25/ukgov_cybersecurity_profession_regulation_ukcsc/ My original concern was…
-
The Fallacy of “Privacy vs: [Children’s] Safety”: why Privacy always wins over any singular concern, and why deployment of #EndToEndEncryption is essentially a binary choice, explained for #NoPlaceToHide
The #NoPlaceToHide campaign has, as-ever, flushed out a lot of argument like this: This is pretty easily explained and dismissed; but first, a quick digression. Metcalfe’s Law (and its nitpicks) There’s a famous law of communications that the ‘value’ (whatever that means) of a ‘network’ increases as the square of the number of participants; this…